AboutWeb's Dave Epler was in attendance at
cf.Objective() in Minnesota last week to discuss the Open Web Application
Security Program (OWASP) Zed Attack Proxy (ZAP). This is an easy to use,
integrated penetration testing tool for finding vulnerabilities in web
applications. The idea is behind OWASP ZAP is to provide a free, open-source
tool to assess vulnerabilities. In effect, this minimizes both hacks and
massive reports from security. Dave led sessions instructing users on how to
get ZAP installed, test web applications, and integrate ZAP with other tools. More
information can be found at the following link: http://cfobjective.com/sessions/using-owasp-zap-to-find-vulnerabilities-in-your-web-apps/